CVE-2004-0475 Information

Description

The showHelp function in Internet Explorer 6 on Windows XP Pro allows remote attackers to execute arbitrary local .CHM files via a double backward slash (\\\) before the target CHM file as demonstrated using an \ms-its\ URL to ntshared.chm. NOTE: this bug may overlap CVE-2003-1041.

Reference

http://www.securityfocus.com/archive/1/363202 http://www.securityfocus.com/bid/10348 https://exchange.xforce.ibmcloud.com/vulnerabilities/16147